US20050265355A1 - Application of an ethernet/MPLS "half bridge" to provide emulated ethernet LAN functions in SONET networks - Google Patents

Application of an ethernet/MPLS "half bridge" to provide emulated ethernet LAN functions in SONET networks Download PDF

Info

Publication number
US20050265355A1
US20050265355A1 US10/856,408 US85640804A US2005265355A1 US 20050265355 A1 US20050265355 A1 US 20050265355A1 US 85640804 A US85640804 A US 85640804A US 2005265355 A1 US2005265355 A1 US 2005265355A1
Authority
US
United States
Prior art keywords
packet
vpn
mpls
sonet
vlan
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Granted
Application number
US10/856,408
Other versions
US7430210B2 (en
Inventor
Paul Havala
Samuel Lisle
Biaodong Cai
Floyd Ferguson
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Fujitsu Ltd
Original Assignee
Fujitsu Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Fujitsu Ltd filed Critical Fujitsu Ltd
Priority to US10/856,408 priority Critical patent/US7430210B2/en
Assigned to FUJITSU LIMITED reassignment FUJITSU LIMITED ASSIGNMENT OF ASSIGNORS INTEREST (SEE DOCUMENT FOR DETAILS). Assignors: CAI, BIAODONG, LISLE, SAMUEL V., FERGUSON, FLOYD D., HAVALA, PAUL F.
Priority to JP2005154510A priority patent/JP2005341583A/en
Publication of US20050265355A1 publication Critical patent/US20050265355A1/en
Application granted granted Critical
Publication of US7430210B2 publication Critical patent/US7430210B2/en
Expired - Fee Related legal-status Critical Current
Adjusted expiration legal-status Critical

Links

Images

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L45/00Routing or path finding of packets in data switching networks
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L12/00Data switching networks
    • H04L12/28Data switching networks characterised by path configuration, e.g. LAN [Local Area Networks] or WAN [Wide Area Networks]
    • H04L12/46Interconnection of networks
    • H04L12/4641Virtual LANs, VLANs, e.g. virtual private networks [VPN]
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L45/00Routing or path finding of packets in data switching networks
    • H04L45/50Routing or path finding of packets in data switching networks using label swapping, e.g. multi-protocol label switch [MPLS]
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04JMULTIPLEX COMMUNICATION
    • H04J2203/00Aspects of optical multiplex systems other than those covered by H04J14/05 and H04J14/07
    • H04J2203/0001Provisions for broadband connections in integrated services digital network using frames of the Optical Transport Network [OTN] or using synchronous transfer mode [STM], e.g. SONET, SDH
    • H04J2203/0073Services, e.g. multimedia, GOS, QOS
    • H04J2203/0082Interaction of SDH with non-ATM protocols
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04JMULTIPLEX COMMUNICATION
    • H04J2203/00Aspects of optical multiplex systems other than those covered by H04J14/05 and H04J14/07
    • H04J2203/0001Provisions for broadband connections in integrated services digital network using frames of the Optical Transport Network [OTN] or using synchronous transfer mode [STM], e.g. SONET, SDH
    • H04J2203/0073Services, e.g. multimedia, GOS, QOS
    • H04J2203/0082Interaction of SDH with non-ATM protocols
    • H04J2203/0085Support of Ethernet
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04JMULTIPLEX COMMUNICATION
    • H04J2203/00Aspects of optical multiplex systems other than those covered by H04J14/05 and H04J14/07
    • H04J2203/0001Provisions for broadband connections in integrated services digital network using frames of the Optical Transport Network [OTN] or using synchronous transfer mode [STM], e.g. SONET, SDH
    • H04J2203/0089Multiplexing, e.g. coding, scrambling, SONET
    • H04J2203/0094Virtual Concatenation

Definitions

  • the present invention relates generally to communication networks, and more particularly to an application of an Ethernet/MPLS “half bridge” to provide emulated Ethernet LAN functions in SONET networks.
  • VPNs Virtual Private Networks
  • This shared network may be a wide-area network (WAN) such as the Internet.
  • the VPN may include a Multiservice Provisioning Platforms (MSPPs), a WAN router and a VPN-dedicated device at each geographic site.
  • VPNs may utilize a Virtual Local Area Network (VLAN), a multiprotocol label switching (MPLS) over SONET network or other network.
  • VLAN Virtual Local Area Network
  • MPLS multiprotocol label switching
  • VLANs group network connected devices without relation to their physical wiring and constructions.
  • the sending and receiving of frames is performed within the same group and the broadcasting of frames also takes place within the same group.
  • Communication with a different VLAN group generally uses the intermediary of a router.
  • MPLS provides a virtual communication path in an Internet Protocol (IP WAN), which may include a SONET network.
  • IP WAN Internet Protocol
  • MPLS adds a label onto an IP packet that identifies a connection.
  • the network router transmits the IP packet by popping, pushing or swapping the value of the label. In this way, an IP connection-type service is provided.
  • IP WAN Internet Protocol
  • MPLS standards do not address integration of all aspects of MPLS switching into a SONET network.
  • a virtual private network includes a core network.
  • the core network includes a shared label switching over SONET network.
  • a plurality of Virtual Local Access Networks (VLANs) are each coupled to a Multiservice Provision Platform (MSPP) of the SONET network.
  • MSPP Multiservice Provision Platform
  • Each VLAN communicates traffic with a corresponding MSPP utilizing Ethernet.
  • the MSPPs interface the VLANs with the SONET network.
  • Technical advantages of one or more embodiments may include providing an MPLS/SONET network to emulate a LAN as compared to a switch/bridge.
  • the MPLS/SONET network passes complex bridging control protocols transparently, so this implementation dramatically reduces complexity and simplifies interoperability. The cost of ownership may be significantly lowered.
  • Yet other technical advantages may include an ability to cross an arbitrary number of SONET rings and may provide efficient support of point-to-point, multipoint services.
  • Still yet other technical advantages may be Quality of Service (QoS) options per customer port and/or VLAN.
  • QoS Quality of Service
  • FIG. 1 illustrates one embodiment of virtual local area networks (VLANs) with access to a shared label switching over SONET network;
  • VLANs virtual local area networks
  • FIG. 2 illustrates one embodiment of a Multiservice Provisioning Platform (MSPP) of FIG. 1 ;
  • MSPP Multiservice Provisioning Platform
  • FIG. 3 illustrates one embodiment of conversion of a VLAN packet to a MPLS SONET packet in the network of FIG. 1 ;
  • FIG. 4 illustrates one embodiment of the conversion table of the subrouter of FIG. 2 ;
  • FIG. 5 illustrates one embodiment of the Ethernet line card of FIG. 2 ;
  • FIG. 6 illustrates one embodiment of the topology of enterprise networks utilizing a shared MPLS/SONET network
  • FIGS. 7 A-C illustrates one embodiment of a logical view of the enterprise network of FIG. 6 ;
  • FIG. 8 illustrates one embodiment of the Layer- 2 (L2) VPN for the Enterprise A of FIG. 6 ;
  • FIG. 9 illustrates one embodiment of the MSPP of FIG. 6 ;
  • FIGS. 10 A-B illustrate one embodiment of the VPN tables of FIG. 9 ;
  • FIGS. 1 A-C illustrate one embodiment of enterprise VPN tables for Enterprise A in the network of FIG. 6 ;
  • FIG. 12 illustrates exemplary transmission of a packet between customer premise equipment (CPEs) of disparate domains for Enterprise A of FIG. 6 ;
  • CPEs customer premise equipment
  • FIG. 13 illustrates one embodiment of a first part of a method for VLAN-mapped MPLS/SONET transmit processing
  • FIG. 14 illustrates one embodiment of a second part of the method for VLAN-mapped MPLS/SONET transmit processing
  • FIGS. 15 A-B illustrate one embodiment of correspondence between user priority and a VLAN and IP precedence and MPLS/SONET.
  • FIG. 1 illustrates one embodiment of virtual local area networks (VLANs) with access to a shared label switching over SONET network to form a plurality of virtual private networks (VPNs) via channelized Ethernet over SONET (EoS).
  • the VPNs are Layer-2 (L2) VPNs. Layer-3 or other layer VPN could be used.
  • the shared label switching over SONET network is a multiprotocol label switching over SONET (MPLS/SONET) network. MPLS provides a path (a virtual communication path) into an IP network.
  • MPLS provides a path (a virtual communication path) into an IP network.
  • the shared network may comprise other label switching networks, Internet Protocol (IP) networks or other suitable networks with tunneling or other functionality to support geographically distributed virtual private network (VPNs).
  • IP Internet Protocol
  • VPNs for example, non-IP such as IPX, FNA, AppleTalk and the like may be implemented.
  • a mixed network comprises VLANs 101 - 104 of sites A to D, respectively, and a shared MPLS/SONET network 110 .
  • Schemes for implementing a VLAN include (1) port-base VLAN, (2) MAC-address based VLAN and (3) policy-based VLAN.
  • the MPLS/SONET network may comprise Label Switching Routing (LSRs).
  • LSRs Label Switching Routing
  • the VLANs 101 - 104 are managed by prescribed VLAN IDs (VIDs).
  • VIDs VLAN IDs
  • the shared MPLS/SONET network 110 is managed by labels and may be constructed on the Internet or other Wide Area Network (WAN) by MPLS/SONET.
  • the edges of the MPLS network 110 are provided with Multiservice Provisioning Platforms (MSPPs) 111 - 114 .
  • MSPPs Multiservice Provisioning Platforms
  • MSPPs 111 - 114 may be any suitable device within or connected to the shared core network and operable to interface between a VLAN (or other suitable LAN) and the shared core network and to switch, route, direct, bridge, convert or otherwise process and/or send traffic.
  • MSPPs 111 - 114 may comprise Label Edge Routers (LERs).
  • send means to forward, allow or initiate forwarding or sending, transmitting or otherwise directing.
  • Each MSPP 111 - 114 converts ingress VLAN packets, which enter from the VLANs 101 - 104 , to MPLS packets and transmits the MPLS packets over one or more SONET paths in the MPLS/SONET network 110 .
  • Each MSPP 111 - 114 is further operable to convert MPLS packets to egress VLAN packets and output the VLAN packets to prescribe VLANs.
  • each MSPP 111 - 114 converts a VID contained in a VLAN packet to a VPN label, which is a VPN identifier, finds a forwarding label, if appropriate, for forwarding the packet along a prescribed route on the basis of the destination of the VLAN packet, and poses these labels, when appropriate, in place of the VID to generate an MPLS packet, and sends the MPLS packet to the MPLS/SONET network 110 by mapping the MPLS packet into one or more SONET paths.
  • find means to look-up, determine, retrieve or otherwise become aware of.
  • the MPLS/SONET network 110 routes the MPLS packet to the target MSPP 111 - 114 over a preset route while the forwarding label of the packet, if included, is replaced.
  • a MSPP 111 - 114 receiving the packet converts the MPLS packet to an MPLS packet, removes any included forwarding label, converts the VPN label to the original VID (or to another VID), adds the VID to the packet in place of the label to generate a VLAN packet and sends the VLAN packet to the VLAN 101 - 114 indicated by the VID.
  • a packet can be transmitted from a VLAN 101 - 104 transmitting a packet belonging to a certain VPN to a disparate VLAN 101 - 104 receiving the packet and belonging to the same VPN.
  • the VLANs 101 - 104 are each connected to MPLS/SONET network 110 by Ethernet interfaces.
  • each means every one of at least a subset of the identified items and SONET means Synchronous Optical Networks including Synchronous Signal Digital Hierarchy (SDH) networks.
  • SDH Synchronous Signal Digital Hierarchy
  • the network elements of each VLAN 101 - 104 and MPLS/SONET network 110 include MSPPs 111 - 114 which map Ethernet services over SONET.
  • a SONET path or a virtual concatenation of SONET paths provides a point-to-point tunnel.
  • Traditional SONET paths include STS-1 (51.84 Mbps), STS-Nc (e.g., 622.08 Mbps for STS-12c) and VT1.5 (1.728 Mbps) paths.
  • Virtual concatenation combines a number of SONET paths (e.g., 5 STS-3c, virtually concatenated into STS-3c-5v) to present a single payload to the EoS adaptation layer.
  • Virtual concatenation provides additional bandwidth granularity for tunnels (i.e., at integer multiples of traditional SONET rates) in a manner that is transparent to the SONET network as virtual concatenation is visible only to SONET path terminating elements and the SONET network operates at the SONET section and line layers.
  • edge network elements of the VLANs 101 - 104 and of the MPLS/SONET network 110 includes SONET interfaces that support physical layer channelization in which Synchronous Transport Signal (STS) or Virtual Tributary (VT) paths are multiplexed onto a single physical interface.
  • STS Synchronous Transport Signal
  • VT Virtual Tributary
  • FIG. 2 illustrates one embodiment of MSPP 111 of FIG. 1 .
  • the other MSPPs may be identically or similarly constructed.
  • MSPP 111 may be otherwise suitably constructed with disparate elements and/or with its functionality otherwise distributed or combined.
  • the functionality of MSPP 111 and other components of the network may be performed by logic and encoded in media.
  • the logic may be hardware or software based.
  • MSPP 111 has one or more Ethernet line cards 121 equipped with an Ethernet interface function for receiving a VLAN packet from a certain VLAN.
  • Each Ethernet line card 121 may be associated with a separate VPN identification unit 122 .
  • a single VPN identification unit 122 may be associated with the plurality or all of the Ethernet line cards 121 of the MSPP 111 .
  • tag/label converter subrouter
  • the subrouter 123 i corresponding to the identified VPN has a conversion table 124 which, in one embodiment, sorts the correspondence between (1) VLAN IDs (VIDs) and (2) VPN identifiers (VPN labels) that specify VPNs to which the VLANs specified by the VIDs belong. Details of the conversion table 124 are illustrated in FIG. 4 .
  • MSPP 111 may further include a route decision unit 131 for deciding beforehand a route to a MSPP 111 - 114 receiving an MPLS packet using a routing protocol 132 and storing in a MPLS/SONET network routing table (forwarding-memory) 133 a forwarding label and an egress interface.
  • the egress interface may include a SONET path and an outgoing interface.
  • the forwarding label may comprise a null forwarding label or an IP forwarding label (a push label).
  • the null forwarding label has 0 bytes and is included when the egress interface provides sufficient context for a corresponding VPN.
  • MSPP 111 comprises a half bridge.
  • a half bridge is any software, hardware, or firmware operable to only replicate data toward MPLS/SONET network 110 , only learns Layer-2 address information from the MPLS/SONET network 110 , and performs split horizon forwarding (i.e., does not forward data received from the MPLS/SONET network back to the MPLS/SONET network).
  • MPLS/SONET network 110 emulates Ethernet LAN function and thus does not participate in the Ethernet switch control plane, thereby passing Ethernet switch control traffic transparently. In so doing, MPLS/SONET network 110 eliminates redundant bridging functions.
  • Each MPLS/SONET line card 128 is coupled to tag/label converter 123 i and MPLS/SONET network 110 .
  • MPLS/SONET line card 128 is operable to receive an MPLS packet from tag/label converter 123 i and communicate an MPLS packet to MPLS network 110 .
  • the received MPLS packet is mapped into one or more SONET paths.
  • Line card 128 may be any software, hardware, or firmware operable to map an MPLS packet into one or more SONET paths, using methods that include, but are not limited to, SONET virtual concatenation.
  • FIG. 3 illustrates one embodiment of conversion of a VLAN packet to an MPLS packet.
  • conversion means to swap, translate, transition or otherwise modify addressing information in a packet.
  • the tag of a VLAN packet is swapped for a VPN label and a forwarding label to generate the MPLS packet.
  • the VLAN packet may be otherwise suitably converted to an MPLS or other label switching packet.
  • the subrouter 123 i refers to conversion table 124 to find the VPN identifier (VPN label) 156 corresponding to the VID contained in tag 152 .
  • Subrouter 123 i further finds the receiving MSPP 111 - 114 based upon the destination address contain in the VLAN packet 150 and finds, if appropriate, forwarding label 158 , which has been stored in correspondence with the IP address of MSPP 111 - 114 , from the MPLS network routing table 133 .
  • subrouter 123 i inserts, swaps, or replaces VPN label 156 and forwarding label 158 in place of tag 152 of VLAN packet 150 to generate MPLS packet 154 and sends MPLS packet 154 to MPLS network 110 via MPLS/SONET line card 128 .
  • MPLS/SONET line card 128 may be equipped with an MPLS over SONET interface function for receiving a MPLS packet from route decision unit 131 and mapping the received MPLS packet into one or more SONET paths.
  • MPLS/SONET network 110 routes MPLS packet 154 to the target MSPP 111 - 114 over the preset route while replacing, where appropriate, forwarding label 158 .
  • Subrouter 123 i removes, where appropriate, forwarding label 158 and then refers to conversion table 124 to find the VID that corresponds to VPN label 156 . Subrouter 123 i then generates a VLAN packet 150 by adding a tag 152 , which includes the VID found, in place of the VPN label 156 and sends VLAN packet 152 to VLAN 101 - 104 , which is indicated by the VIED. It should be noted that the contents of table 124 is not the same in each MSPP 111 - 114 and that the VID values of VLANs that belong to the same VPN are not necessarily the same. Further, though not shown clearly in FIG. 2 , a subrouter may exist for every VPN, as illustrated in FIG. 5 .
  • VLAN packet 150 that enters from VLAN 101 side is changed to an MPLS packet 154 by MSPP 111 , MPLS packet 154 is transmitted through MPLS/SONET network 110 and is converted to a VLAN packet 150 by MSPP 113 , and this VLAN packet is then transmitted to a VLAN 103 belonging to a VPN identical with that on the transmit side.
  • FIG. 5 illustrates one embodiment of Ethernet line card 121 of FIG. 2 .
  • an Ethernet interface is provided for each Ethernet channel.
  • the Ethernet line card 121 may be otherwise suitably configured in its functionality otherwise distributed or otherwise distributed or combined.
  • Ethernet line card 121 includes a plurality of Ethernet channels associated with a plurality of VIDs.
  • each Ethernet channel is coupled to a corresponding VPN identification unit 122 .
  • the outgoing interface of the VPN table includes interface and subinterface information, a single Ethernet interface and VPN identification table 122 may be used at Ethernet line card 121 .
  • Ethernet line card 121 In operation, an Ethernet channel is received by Ethernet line card 121 .
  • Ethernet line card 121 forwards each channel to a corresponding VPN unit 122 .
  • the VPN identification unit 122 identifies a VPN by referring to the VID of the received VLAN packet and inputs the packet in the corresponding subrouter 123 i for conversion.
  • Ethernet line card 121 determines an outgoing interface (port) and sub-interface (channels) based on the outgoing interface identifier provided by the subrouter 123 i.
  • FIG. 6 illustrates one embodiment of the topology of enterprise networks using a shared MPLS/SONET network.
  • MSPPs 211 - 213 are disposed between the VLANs and MPLS/SONET ring 200 to provide channelized EoS.
  • an MPLS/SONET network 200 is formed as a dedicated or shared network.
  • Numerals 201 , 202 and 203 denote VLAN domains for Irving, Dallas and Plano, respectively.
  • the VLAN domains may be for other cities, geographic regions, countries or states. For example, in one embodiment, the VLAN domains may comprise San Francisco, Los Angeles and San Diego.
  • the Internet is indicated at 204 and a firewall (FW) as shown at 205 .
  • a plurality of enterprise VLANs have been set up at each of the VLAN domains.
  • MSPPs 211 - 213 are Provided between MPLS/SONET network 200 and the VLAN domains 201 - 203 at the edge of MPLS/SONET network.
  • MSPPs in this embodiment support MPLS and SONET and are VPN aware.
  • MSPPs 211 - 213 provide mapping or adaptation of Ethernet interfaces to SONET paths. Accordingly, the CPEs in each VLAN domain 101 - 103 communicate with the MSPPs 211 - 213 by Ethernet and the MSPPs 211 - 213 communicate with MPLS/SONET network 200 via SONET channels.
  • a VLAN (VID 152 ) of the Enterprise A and an Intranet of an Enterprise C in the Dallas area had been formed in the VLAN domain 202 for Dallas.
  • a CPE router 224 constituting part of the Intranet of Enterprise C is connected to the second port of MSPP 212 .
  • a CPE router 234 constituting part of the Intranet of Enterprise C is connected to the second port of MSPP 213 .
  • MPLS/SONET network 200 If MPLS/SONET network 200 is viewed from the side of Enterprise A, therefore, it appears as though CPE routers 214 , 221 , 231 have been connected to a Layer-2 switching hub SHB, as illustrated in FIG. 7A , and the network of Enterprise A takes on an emulated VLAN-over-MPLS/SONET network topology in which a core network is constructed by MPLS/SONET network 200 and an access network is constructed by the VLANs.
  • the side of MPLS/SONET network 200 is viewed from the side of Enterprise B, it appears as though the CPE router 216 and firewall 205 have been connected to a Layer-2 switching hub SHB, as illustrated in FIG. 7B , and the network of Enterprise B takes on the form of an Intranet connection.
  • the side of the MPLS/SONET network 200 is viewed from the side of Enterprise C, it appears as though CPE routers 224 , 234 of the Intranets 223 , 233 , respectively, have been connected to a Layer-2 switching hub SHB′′, as illustrated in FIG. 7C , and the network of Enterprise C takes on the form of an emulated Ethernet LAN over MPLS/SONET network topology.
  • the MPLS/SONET ring appears as a Layer- 2 switching hub, not a switch/bridge or router.
  • FIG. 8 illustrates one embodiment of the L2 VPN for the Enterprise A of FIG. 6 .
  • the components of Enterprise A are identical to those of FIG. 6 and are designated by like reference characters.
  • Media Access Control (MAC) addresses MAC A, MAC B and MAC C which are L2 addresses, have been assigned to the routers CPE A 214 , 221 and 231 , respectively, that construct the VLANs.
  • FIG. 9 illustrates one embodiment of MSPP of FIG. 6 .
  • MSPPs 211 - 213 may be identical or similar to MSPP 111 of FIG. 2 .
  • Components in FIG. 9 that are identical to those of FIG. 2 are designated by like reference characters.
  • Ethernet line card 121 which has an Ethernet interface function, receives a VLAN packet from a prescribed VLAN. As previously described, the VLAN packet is received via Ethernet channels and forwarded to the corresponding VPN identification unit 122 .
  • the VPN identification unit 122 identifies the VPN by referring to the VID of the received VLAN packet and inputs the packet to the subrouter 123 i that corresponds to this VPN. As shown in (a) of FIGS.
  • the L2 label table 124 of the subrouter 123 i stores, in one embodiment, the correspondence among (1) VPN labels (VPN identifiers), (2) L2 addresses (MAC addresses) of CPE routers under control, (3) output-side interfaces, (4) identifiers (VIDs) of VLANs connected to MSPPs, and (5) VPNi (VPN Instance): a convenient name for VPN identifier.
  • the outgoing interface field may provide the interface and sub-interface information for ports and channels for Ethernet channels.
  • FIG. 10A illustrates the initial state and FIG. 10B the state that results after various data have been set.
  • a L2 VPN routing table 125 stores ( 1 ) a L2 address (MAC address) of the CPE router within a VLAN, (2) a loopback address (IP address) of the MSPP to which the CPE router is connected, and (3) an identifier (VID) of the VLAN to which the CPE router belongs, as shown in (B) of FIGS. 10A and 10B .
  • MAC address L2 address
  • IP address loopback address
  • VIP an identifier
  • the MPLS network routing table (forwarding-label memory) 133 stores forwarding labels which specify the route to the received MSPP 211 - 213 and egress interfaces.
  • the route decision unit for deciding the route within the MPLS/SONET network 200 searches for routes from the transmitting MSPP 211 - 213 to the receiving MSPP 211 - 213 to the receiving MSPP 211 - 213 and assigns a forwarding label and an egress interface to each route in accordance with the LDP (label distribution protocol) in such a manner that the VLANs belonging to the same VPN can communicate with one another
  • route decision unit 131 decides the route to the receiving MSPP 211 - 213 using routing protocol 132 and stores forwarding label 158 (push label) and outgoing interface (which may include a physical interface and one or more SONET paths) in the forwarding label table 133 in a form mapped to the loopback address (IP address) of the receiving MSPP 211 - 213 .
  • a VPN label processor 126 finds the VPN identifier (VPN label) 156 , which corresponds to the VID contained in the tag, from the VPN label table 124 . Further, on the basis of the destination MAC address containing the VPN packet 150 , a routing table processor 127 obtains the loopback address of the output-side MSPP 211 - 213 from the L2 VPN routing table 125 and then finds the forwarding label and egress interface, which corresponds to the above mentioned loopback address (IP address), from the forwarding label table 133 .
  • IP address loopback address
  • subrouter 123 i swaps VPN label 156 and forwarding label 158 for tag 152 to generate an MPLS packet 154 , as shown in FIG. 3 , and passes MPLS packet 154 to MPLS/SONET line card 128 to map MPLS packet 154 into one or more SONET paths.
  • MPLS packet 154 arrives at the receiving MSPP 211 - 213 along the preset route through the MPLS/SONET network 200 while its forwarding label 158 , if included, is replaced.
  • MPLS/SONET line card 128 of the receiving MSPP 211 - 213 terminates the SONET path(s), receives the MPLS packet 154 from MPLS/SONET network 200 , and passes a corresponding MPLS packet to VPN identification unit 129 .
  • Subrouter 123 i removes the forwarding label 158 , if included, and refers to the VPN label table 124 to find the VID corresponding to VPN label 156 .
  • Subrouter 123 i then swaps tag 152 , which contains the VID, for VPN label 156 to thereby generate a VLAN packet 150 and sends this VLAN packet 150 via line card 121 to the VLAN indicated by the VID.
  • the VPN label tables 124 and MSPPs 221 - 213 are not identical in content and that the VID values of VLANs that belong to the same VPN are not necessarily the same.
  • a route is established beforehand between MSPPs 211 - 213 to which these VLANs are connected to and forwarding labels and egress interfaces are stored in forwarding label table 133 ( FIG. 9 ) of the router along the route, and the VPN label table 124 and L2 VPN routing table 125 are created.
  • VPN label 124 and L2 VPN routing table 125 the operator may manually enter the VPN identifier (VPN label), the VLAN identifier (VID) and the VPNi, as illustrated at (A) in FIG. 10A . If these items of data are inputted into MSPPs 211 - 213 , VPN label processor 126 of the MSPPs use the ARP (Address Resolution Protocol) to find the MAC address of the CPE router of the VLAN connected to this processor, finds the interface of the route over which the MPLS packet with the appended, where appropriate, push label are sent, such as shown in (A) of FIG. 10B and creates the VPN label table 124 .
  • ARP Address Resolution Protocol
  • routing table processor 127 finds the MAC address of the locally connected CPE router and the VLAN identifier (VID) from VPN label table 124 and creates direct-connect information of the L2 VPN routing table 125 , which is illustrated, for example, in (B) of FIG. 10B .
  • VIP VLAN identifier
  • a suitable routing protocol e.g., OSPF, IS-IS, OSPF-TE
  • FIG. 12 illustrates exemplary transmissions of a packet between CPEs of disparate domains for Enterprise A of FIG. 6 .
  • packet 150 (PKT 1 ) enters MSPP A 211 the router generates an MPLS packet 154 (PKT 2 ) by removing tag 152 and adding, in place of tag 152 , a VPN label 156 ( 26 : the VPN identifier of Enterprise A) and a forwarding label 158 (push label), where appropriate, and sends MPLS packet 154 (PKT 2 ) to MPLS/SONET network 200 over a SONET path.
  • MPLS packet 154 (PKT 2 ) subsequently arrives at the receiving MSPP C 213 along the preset route through MPLS/SONET network 200 while its forwarding label 158 , if included, is replaced.
  • VLAN packet 150 (PKT 3 ) arrives at the user router 231 .
  • FIGS. 13-14 illustrate one embodiment of the method for VLAN-mapped MPLS/SONET transmit processing.
  • VLAN packets 150 are received via Ethernet channels and transmitted as MPLS packets.
  • VLAN ID VLAN ID
  • step 308 If a forwarding label is required at step 308 , then the execution proceeds to step 310 .
  • MSPP 211 - 213 refers to forwarding label table 133 to find the forwarding label (push label) and imposes the push label as L1 and into one or more SONET paths. If the forwarding label is not required, then execution proceeds to step 311 .
  • the MPLS packet is passed to an MPLS/SONET line card based on the retrieved egress interface.
  • step 312 the packet is sent to MPLS/SONET line card 128 to map the MPLS packet 154 to one or more SONET paths and send the MPLS packet through MPLS/SONET network 200 .
  • MPLS packet 154 is forwarded to the target MSPP 211 - 213 , along the set route through MPLS/SONET network 200 while forwarding label 158 , if included, is replaced at step 314 .
  • VID VLAN ID
  • MSPP 211 - 213 removes L2 label 156 and adds a tag 152 that contains the VID to create a VLAN packet at step 326 .
  • MSPP 211 - 213 refers to VPN label table 124 to find the output interface and sends VLAN packet 152 to that interface at step 317 .
  • the output interface may be a logical Ethernet destination at Ethernet line card 121 .
  • the logical Ethernet value may be mapped to an interface and sub-interface identifying port and channels.
  • the destination user router CPE C receives the VLAN packet and executes predetermined processing at step 330 .
  • FIGS. 15 A-B illustrate one embodiment of correspondence between user priority and a VLAN and IP precedence and MPLS.
  • tag 152 of a VLAN packet 150 includes three-bit user priority and it is arranged so that the priority value stipulated by each MAC is entered using these three bits.
  • a priority value can take on eight values of 0 - 7 .
  • User priority is low if the value is small (e.g., zero) and high if the value is large.
  • the label of an MPLS packet 154 includes a three-bit experimental field EXP, as shown in FIG. 17B .
  • IP precedence is expressed using these three bits.
  • IP precedence also is a priority value that can take on eight levels of 0 - 7 . Priority is low if the value is small (e.g., zero) and high if the value is large. Accordingly, when a conversion is made from a VLAN packet 150 to an MPLS packet 154 in an MSPP 211 - 213 , the three-bit user priority is inserted into the EXP field.
  • priority control in a VLAN can be continued as IP precedence control in an MPLS network. Further, it is possible to return from IP precedence control to the original priority control in a VLAN.

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Computer Security & Cryptography (AREA)
  • Data Exchanges In Wide-Area Networks (AREA)

Abstract

A system and method for providing emulated Ethernet LAN functions in a SONET network are provided. In one embodiment, a virtual private network includes a core network. The core network includes a shared label switching over SONET network. A plurality of Virtual Local Access Networks (VLANs) are each coupled to a Multiservice Provision Platform (MSPP) of the SONET network. Each VLANs communicates traffic with a corresponding MSPP utilizing Ethernet. The MSPPs interface the VLANs with the SONET network.

Description

    TECHNICAL FIELD
  • The present invention relates generally to communication networks, and more particularly to an application of an Ethernet/MPLS “half bridge” to provide emulated Ethernet LAN functions in SONET networks.
    • BACKGROUND
  • Virtual Private Networks (VPNs) are used to interconnect geographically remote offices, campuses, factories, research labs and other factories of an Enterprise Across a shared network. This shared network may be a wide-area network (WAN) such as the Internet. The VPN may include a Multiservice Provisioning Platforms (MSPPs), a WAN router and a VPN-dedicated device at each geographic site. VPNs may utilize a Virtual Local Area Network (VLAN), a multiprotocol label switching (MPLS) over SONET network or other network.
  • VLANs group network—connected devices without relation to their physical wiring and constructions. The sending and receiving of frames is performed within the same group and the broadcasting of frames also takes place within the same group. Communication with a different VLAN group generally uses the intermediary of a router.
  • MPLS provides a virtual communication path in an Internet Protocol (IP WAN), which may include a SONET network. In particular, MPLS adds a label onto an IP packet that identifies a connection. The network router transmits the IP packet by popping, pushing or swapping the value of the label. In this way, an IP connection-type service is provided. However, the MPLS standards do not address integration of all aspects of MPLS switching into a SONET network.
    • SUMMARY
  • A system and method for providing emulated Ethernet LAN functions in a SONET network are provided. In one embodiment, a virtual private network includes a core network. The core network includes a shared label switching over SONET network. A plurality of Virtual Local Access Networks (VLANs) are each coupled to a Multiservice Provision Platform (MSPP) of the SONET network. Each VLAN communicates traffic with a corresponding MSPP utilizing Ethernet. The MSPPs interface the VLANs with the SONET network.
  • Technical advantages of one or more embodiments may include providing an MPLS/SONET network to emulate a LAN as compared to a switch/bridge. In this case the MPLS/SONET network passes complex bridging control protocols transparently, so this implementation dramatically reduces complexity and simplifies interoperability. The cost of ownership may be significantly lowered. Yet other technical advantages may include an ability to cross an arbitrary number of SONET rings and may provide efficient support of point-to-point, multipoint services. Still yet other technical advantages may be Quality of Service (QoS) options per customer port and/or VLAN.
  • Other technical advantages will be readily apparent to one skilled in the art from the following figures, descriptions and claims. Moreover, while specific advantages have been enumerated above, various embodiments may include all, some or none of the enumerated advantages.
    • BRIEF DESCRIPTION OF THE DRAWINGS
  • FIG. 1 illustrates one embodiment of virtual local area networks (VLANs) with access to a shared label switching over SONET network;
  • FIG. 2 illustrates one embodiment of a Multiservice Provisioning Platform (MSPP) of FIG. 1;
  • FIG. 3 illustrates one embodiment of conversion of a VLAN packet to a MPLS SONET packet in the network of FIG. 1;
  • FIG. 4 illustrates one embodiment of the conversion table of the subrouter of FIG. 2;
  • FIG. 5 illustrates one embodiment of the Ethernet line card of FIG. 2;
  • FIG. 6 illustrates one embodiment of the topology of enterprise networks utilizing a shared MPLS/SONET network;
  • FIGS. 7A-C illustrates one embodiment of a logical view of the enterprise network of FIG. 6;
  • FIG. 8 illustrates one embodiment of the Layer-2 (L2) VPN for the Enterprise A of FIG. 6;
  • FIG. 9 illustrates one embodiment of the MSPP of FIG. 6;
  • FIGS. 10A-B illustrate one embodiment of the VPN tables of FIG. 9;
  • FIGS. 1A-C illustrate one embodiment of enterprise VPN tables for Enterprise A in the network of FIG. 6;
  • FIG. 12 illustrates exemplary transmission of a packet between customer premise equipment (CPEs) of disparate domains for Enterprise A of FIG. 6;
  • FIG. 13 illustrates one embodiment of a first part of a method for VLAN-mapped MPLS/SONET transmit processing;
  • FIG. 14 illustrates one embodiment of a second part of the method for VLAN-mapped MPLS/SONET transmit processing;
  • FIGS. 15A-B illustrate one embodiment of correspondence between user priority and a VLAN and IP precedence and MPLS/SONET.
    • DETAILED DESCRIPTION OF THE DRAWINGS
  • FIG. 1 illustrates one embodiment of virtual local area networks (VLANs) with access to a shared label switching over SONET network to form a plurality of virtual private networks (VPNs) via channelized Ethernet over SONET (EoS). In this embodiment, the VPNs are Layer-2 (L2) VPNs. Layer-3 or other layer VPN could be used. In this embodiment, the shared label switching over SONET network is a multiprotocol label switching over SONET (MPLS/SONET) network. MPLS provides a path (a virtual communication path) into an IP network. It will be understood that the shared network may comprise other label switching networks, Internet Protocol (IP) networks or other suitable networks with tunneling or other functionality to support geographically distributed virtual private network (VPNs). For example, non-IP such as IPX, FNA, AppleTalk and the like may be implemented.
  • Referring to FIG. 1, a mixed network comprises VLANs 101-104 of sites A to D, respectively, and a shared MPLS/SONET network 110. Schemes for implementing a VLAN include (1) port-base VLAN, (2) MAC-address based VLAN and (3) policy-based VLAN. The MPLS/SONET network may comprise Label Switching Routing (LSRs). As described in more detail below, the VLANs 101-104 are managed by prescribed VLAN IDs (VIDs). The shared MPLS/SONET network 110 is managed by labels and may be constructed on the Internet or other Wide Area Network (WAN) by MPLS/SONET. The edges of the MPLS network 110 are provided with Multiservice Provisioning Platforms (MSPPs) 111-114. MSPPs 111-114 may be any suitable device within or connected to the shared core network and operable to interface between a VLAN (or other suitable LAN) and the shared core network and to switch, route, direct, bridge, convert or otherwise process and/or send traffic. For example, MSPPs 111-114 may comprise Label Edge Routers (LERs). As used herein, send means to forward, allow or initiate forwarding or sending, transmitting or otherwise directing.
  • Each MSPP 111-114 converts ingress VLAN packets, which enter from the VLANs 101-104, to MPLS packets and transmits the MPLS packets over one or more SONET paths in the MPLS/SONET network 110. Each MSPP 111-114 is further operable to convert MPLS packets to egress VLAN packets and output the VLAN packets to prescribe VLANs.
  • In a particular embodiment, as described in more detail below, each MSPP 111-114 converts a VID contained in a VLAN packet to a VPN label, which is a VPN identifier, finds a forwarding label, if appropriate, for forwarding the packet along a prescribed route on the basis of the destination of the VLAN packet, and poses these labels, when appropriate, in place of the VID to generate an MPLS packet, and sends the MPLS packet to the MPLS/SONET network 110 by mapping the MPLS packet into one or more SONET paths. As used herein, find means to look-up, determine, retrieve or otherwise become aware of. The MPLS/SONET network 110 routes the MPLS packet to the target MSPP 111-114 over a preset route while the forwarding label of the packet, if included, is replaced. Upon receiving the MPLS packet from the MPLS/SONET network 110, a MSPP 111-114 receiving the packet converts the MPLS packet to an MPLS packet, removes any included forwarding label, converts the VPN label to the original VID (or to another VID), adds the VID to the packet in place of the label to generate a VLAN packet and sends the VLAN packet to the VLAN 101-114 indicated by the VID. In this way, a packet can be transmitted from a VLAN 101-104 transmitting a packet belonging to a certain VPN to a disparate VLAN 101-104 receiving the packet and belonging to the same VPN.
  • The VLANs 101-104 are each connected to MPLS/SONET network 110 by Ethernet interfaces. As used herein, each means every one of at least a subset of the identified items and SONET means Synchronous Optical Networks including Synchronous Signal Digital Hierarchy (SDH) networks. To support EoS, the network elements of each VLAN 101-104 and MPLS/SONET network 110 include MSPPs 111-114 which map Ethernet services over SONET.
  • For channelized EoS, a SONET path or a virtual concatenation of SONET paths provides a point-to-point tunnel. Traditional SONET paths include STS-1 (51.84 Mbps), STS-Nc (e.g., 622.08 Mbps for STS-12c) and VT1.5 (1.728 Mbps) paths. Virtual concatenation combines a number of SONET paths (e.g., 5 STS-3c, virtually concatenated into STS-3c-5v) to present a single payload to the EoS adaptation layer. Virtual concatenation provides additional bandwidth granularity for tunnels (i.e., at integer multiples of traditional SONET rates) in a manner that is transparent to the SONET network as virtual concatenation is visible only to SONET path terminating elements and the SONET network operates at the SONET section and line layers.
  • In the mixed network, edge network elements of the VLANs 101-104 and of the MPLS/SONET network 110 includes SONET interfaces that support physical layer channelization in which Synchronous Transport Signal (STS) or Virtual Tributary (VT) paths are multiplexed onto a single physical interface.
  • FIG. 2 illustrates one embodiment of MSPP 111 of FIG. 1. The other MSPPs may be identically or similarly constructed. MSPP 111 may be otherwise suitably constructed with disparate elements and/or with its functionality otherwise distributed or combined. The functionality of MSPP 111 and other components of the network may be performed by logic and encoded in media. The logic may be hardware or software based.
  • Referring to FIG. 2, MSPP 111 has one or more Ethernet line cards 121 equipped with an Ethernet interface function for receiving a VLAN packet from a certain VLAN. Each Ethernet line card 121 may be associated with a separate VPN identification unit 122. Alternatively, a single VPN identification unit 122 may be associated with the plurality or all of the Ethernet line cards 121 of the MSPP 111. The VPN identification unit 122 identifies, in one embodiment, a VPN by referring to the VID of the received VLAN packet and inputs the packet to a tag/label converter (subrouter) 123 i(i=1, 2, . . . ) that corresponds to the VPN. The subrouter 123 i corresponding to the identified VPN has a conversion table 124 which, in one embodiment, sorts the correspondence between (1) VLAN IDs (VIDs) and (2) VPN identifiers (VPN labels) that specify VPNs to which the VLANs specified by the VIDs belong. Details of the conversion table 124 are illustrated in FIG. 4.
  • MSPP 111 may further include a route decision unit 131 for deciding beforehand a route to a MSPP 111-114 receiving an MPLS packet using a routing protocol 132 and storing in a MPLS/SONET network routing table (forwarding-memory) 133 a forwarding label and an egress interface. The egress interface may include a SONET path and an outgoing interface. The forwarding label may comprise a null forwarding label or an IP forwarding label (a push label). The null forwarding label has 0 bytes and is included when the egress interface provides sufficient context for a corresponding VPN. In one embodiment, MSPP 111 comprises a half bridge. As used herein, a half bridge is any software, hardware, or firmware operable to only replicate data toward MPLS/SONET network 110, only learns Layer-2 address information from the MPLS/SONET network 110, and performs split horizon forwarding (i.e., does not forward data received from the MPLS/SONET network back to the MPLS/SONET network). In this embodiment, MPLS/SONET network 110 emulates Ethernet LAN function and thus does not participate in the Ethernet switch control plane, thereby passing Ethernet switch control traffic transparently. In so doing, MPLS/SONET network 110 eliminates redundant bridging functions.
  • Each MPLS/SONET line card 128 is coupled to tag/label converter 123 i and MPLS/SONET network 110. MPLS/SONET line card 128 is operable to receive an MPLS packet from tag/label converter 123 i and communicate an MPLS packet to MPLS network 110. The received MPLS packet is mapped into one or more SONET paths. Line card 128 may be any software, hardware, or firmware operable to map an MPLS packet into one or more SONET paths, using methods that include, but are not limited to, SONET virtual concatenation.
  • FIG. 3 illustrates one embodiment of conversion of a VLAN packet to an MPLS packet. As used in herein, conversion means to swap, translate, transition or otherwise modify addressing information in a packet. In this embodiment, the tag of a VLAN packet is swapped for a VPN label and a forwarding label to generate the MPLS packet. The VLAN packet may be otherwise suitably converted to an MPLS or other label switching packet.
  • Referring to FIG. 3, when a VLAN packet 150 enters, the subrouter 123 i refers to conversion table 124 to find the VPN identifier (VPN label) 156 corresponding to the VID contained in tag 152. Subrouter 123 i further finds the receiving MSPP 111-114 based upon the destination address contain in the VLAN packet 150 and finds, if appropriate, forwarding label 158, which has been stored in correspondence with the IP address of MSPP 111-114, from the MPLS network routing table 133.
  • If the label is found, subrouter 123 i inserts, swaps, or replaces VPN label 156 and forwarding label 158 in place of tag 152 of VLAN packet 150 to generate MPLS packet 154 and sends MPLS packet 154 to MPLS network 110 via MPLS/SONET line card 128. MPLS/SONET line card 128 may be equipped with an MPLS over SONET interface function for receiving a MPLS packet from route decision unit 131 and mapping the received MPLS packet into one or more SONET paths. MPLS/SONET network 110 routes MPLS packet 154 to the target MSPP 111-114 over the preset route while replacing, where appropriate, forwarding label 158. MPLS/SONET line card 128 of the receiving MSPP 111-114 receives an MPLS packet 154 from MPLS/SONET network 110 and converts the received MPLS packet to an MPLS packet VPN identification unit 129 identifies the VPN by referring to VPN label 156 of MPLS packet 154 and inputs the packet to the subrouter 123 i (i=1, 2, . . . ) that corresponds to the VPN.
  • Subrouter 123 i removes, where appropriate, forwarding label 158 and then refers to conversion table 124 to find the VID that corresponds to VPN label 156. Subrouter 123 i then generates a VLAN packet 150 by adding a tag 152, which includes the VID found, in place of the VPN label 156 and sends VLAN packet 152 to VLAN 101-104, which is indicated by the VIED. It should be noted that the contents of table 124 is not the same in each MSPP 111-114 and that the VID values of VLANs that belong to the same VPN are not necessarily the same. Further, though not shown clearly in FIG. 2, a subrouter may exist for every VPN, as illustrated in FIG. 5.
  • Thus, for example, when communication is initiated from VLAN 101 of site A to VLAN 103 of site D in FIG. 1, tag 152 and label 156 are swapped by MSPP 111, 113 in the manner shown in FIG. 3. As a result, VLAN packet 150 that enters from VLAN 101 side is changed to an MPLS packet 154 by MSPP 111, MPLS packet 154 is transmitted through MPLS/SONET network 110 and is converted to a VLAN packet 150 by MSPP 113, and this VLAN packet is then transmitted to a VLAN 103 belonging to a VPN identical with that on the transmit side.
  • FIG. 5 illustrates one embodiment of Ethernet line card 121 of FIG. 2. In this embodiment, an Ethernet interface is provided for each Ethernet channel. The Ethernet line card 121 may be otherwise suitably configured in its functionality otherwise distributed or otherwise distributed or combined.
  • Referring to FIG. 5, Ethernet line card 121 includes a plurality of Ethernet channels associated with a plurality of VIDs. In this embodiment, each Ethernet channel is coupled to a corresponding VPN identification unit 122. For example, if the outgoing interface of the VPN table includes interface and subinterface information, a single Ethernet interface and VPN identification table 122 may be used at Ethernet line card 121.
  • In operation, an Ethernet channel is received by Ethernet line card 121. Ethernet line card 121 forwards each channel to a corresponding VPN unit 122. As previously described, the VPN identification unit 122 identifies a VPN by referring to the VID of the received VLAN packet and inputs the packet in the corresponding subrouter 123 i for conversion. For egress traffic from MSPP 111, Ethernet line card 121 determines an outgoing interface (port) and sub-interface (channels) based on the outgoing interface identifier provided by the subrouter 123 i.
  • FIG. 6 illustrates one embodiment of the topology of enterprise networks using a shared MPLS/SONET network. In this embodiment, MSPPs 211-213 are disposed between the VLANs and MPLS/SONET ring 200 to provide channelized EoS.
  • Referring to FIG. 6, an MPLS/SONET network 200 is formed as a dedicated or shared network. Numerals 201, 202 and 203 denote VLAN domains for Irving, Dallas and Plano, respectively. The VLAN domains may be for other cities, geographic regions, countries or states. For example, in one embodiment, the VLAN domains may comprise San Francisco, Los Angeles and San Diego. The Internet is indicated at 204 and a firewall (FW) as shown at 205. A plurality of enterprise VLANs have been set up at each of the VLAN domains. Provided between MPLS/SONET network 200 and the VLAN domains 201-203 at the edge of MPLS/SONET network are MSPPs 211-213, respectively, which terminate the respective VLANs. MSPPs in this embodiment support MPLS and SONET and are VPN aware.
  • A VLAN (VID=101) of an Enterprise A and a VLAN (VID=2) of an Enterprise B in the Irving area have been formed in the VLAN domain 201 for Irving. A CPE router (Customer Premises equipment Edge router) 214 constitutes part of the VLAN (VID=101) of Enterprise A is connected to a first port of MSPP 211. As previously described, MSPPs 211-213 provide mapping or adaptation of Ethernet interfaces to SONET paths. Accordingly, the CPEs in each VLAN domain 101-103 communicate with the MSPPs 211-213 by Ethernet and the MSPPs 211-213 communicate with MPLS/SONET network 200 via SONET channels. A CPE router 216 constitutes part of the VLAN (VID=2) of Enterprise B is connected to a second port of MSPP 211.
  • A VLAN (VID=152) of the Enterprise A and an Intranet of an Enterprise C in the Dallas area had been formed in the VLAN domain 202 for Dallas. A CPE router 221 constituting part of the VLAN (VID=152) of Enterprise A is connected to a first port of MSPP 212. A CPE router 224 constituting part of the Intranet of Enterprise C is connected to the second port of MSPP 212.
  • A VLAN (VID=1501) of the Enterprise A and an Intranet of the Enterprise C in the Plano area have been formed in the VLAN domain 203 for Plano. A CPE router 231 constituting part of the VLAN (VID=1501) of Enterprise A is connected by Ethernet to a first port of MSPP 213. A CPE router 234 constituting part of the Intranet of Enterprise C is connected to the second port of MSPP 213.
  • The VLAN (VID=101), VLAN (VID=152) and VLAN (VID=1501) of Enterprise A and the respective areas construct the same VPN. If MPLS/SONET network 200 is viewed from the side of Enterprise A, therefore, it appears as though CPE routers 214, 221, 231 have been connected to a Layer-2 switching hub SHB, as illustrated in FIG. 7A, and the network of Enterprise A takes on an emulated VLAN-over-MPLS/SONET network topology in which a core network is constructed by MPLS/SONET network 200 and an access network is constructed by the VLANs. If the side of MPLS/SONET network 200 is viewed from the side of Enterprise B, it appears as though the CPE router 216 and firewall 205 have been connected to a Layer-2 switching hub SHB, as illustrated in FIG. 7B, and the network of Enterprise B takes on the form of an Intranet connection. If the side of the MPLS/SONET network 200 is viewed from the side of Enterprise C, it appears as though CPE routers 224, 234 of the Intranets 223, 233, respectively, have been connected to a Layer-2 switching hub SHB″, as illustrated in FIG. 7C, and the network of Enterprise C takes on the form of an emulated Ethernet LAN over MPLS/SONET network topology. For each enterprise, the MPLS/SONET ring appears as a Layer-2 switching hub, not a switch/bridge or router.
  • FIG. 8 illustrates one embodiment of the L2 VPN for the Enterprise A of FIG. 6. The components of Enterprise A are identical to those of FIG. 6 and are designated by like reference characters. Media Access Control (MAC) addresses MAC A, MAC B and MAC C which are L2 addresses, have been assigned to the routers CPE A 214, 221 and 231, respectively, that construct the VLANs.
  • FIG. 9 illustrates one embodiment of MSPP of FIG. 6. MSPPs 211-213 may be identical or similar to MSPP 111 of FIG. 2. Components in FIG. 9 that are identical to those of FIG. 2 are designated by like reference characters.
  • Ethernet line card 121, which has an Ethernet interface function, receives a VLAN packet from a prescribed VLAN. As previously described, the VLAN packet is received via Ethernet channels and forwarded to the corresponding VPN identification unit 122. The VPN identification unit 122 identifies the VPN by referring to the VID of the received VLAN packet and inputs the packet to the subrouter 123 i that corresponds to this VPN. As shown in (a) of FIGS. 10A and 10B, the L2 label table 124 of the subrouter 123 i stores, in one embodiment, the correspondence among (1) VPN labels (VPN identifiers), (2) L2 addresses (MAC addresses) of CPE routers under control, (3) output-side interfaces, (4) identifiers (VIDs) of VLANs connected to MSPPs, and (5) VPNi (VPN Instance): a convenient name for VPN identifier. The outgoing interface field may provide the interface and sub-interface information for ports and channels for Ethernet channels.
  • FIG. 10A illustrates the initial state and FIG. 10B the state that results after various data have been set. For every VLAN construction the VPN, a L2 VPN routing table 125, in one embodiment, stores (1) a L2 address (MAC address) of the CPE router within a VLAN, (2) a loopback address (IP address) of the MSPP to which the CPE router is connected, and (3) an identifier (VID) of the VLAN to which the CPE router belongs, as shown in (B) of FIGS. 10A and 10B. In the example of FIG. 8, (1) MAC addresses MAC A, MAC B, MAC C of CPE routers 214, 221, and 231, respectively, (2) loopback address (IP addresses) of MSPPs (MSPP A, MSPP B, MSPP C) 211, 212, 213 to which the CPE routers are connected, and (3) VIDs (equal 101, 151, 1501) to which the CPE routers belong are stored in the table 125 in correspondence with the VLAN (VID=101), VLAN (VID=152) and VLAN (VID=1501), respectively, as shown in (B) of FIG. 10B.
  • The MPLS network routing table (forwarding-label memory) 133 stores forwarding labels which specify the route to the received MSPP 211-213 and egress interfaces. Using a routing protocol, the route decision unit for deciding the route within the MPLS/SONET network 200 searches for routes from the transmitting MSPP 211-213 to the receiving MSPP 211-213 to the receiving MSPP 211-213 and assigns a forwarding label and an egress interface to each route in accordance with the LDP (label distribution protocol) in such a manner that the VLANs belonging to the same VPN can communicate with one another Accordingly, route decision unit 131 decides the route to the receiving MSPP 211-213 using routing protocol 132 and stores forwarding label 158 (push label) and outgoing interface (which may include a physical interface and one or more SONET paths) in the forwarding label table 133 in a form mapped to the loopback address (IP address) of the receiving MSPP 211-213.
  • If a VLAN packet enters as an input, a VPN label processor 126 finds the VPN identifier (VPN label) 156, which corresponds to the VID contained in the tag, from the VPN label table 124. Further, on the basis of the destination MAC address containing the VPN packet 150, a routing table processor 127 obtains the loopback address of the output-side MSPP 211-213 from the L2 VPN routing table 125 and then finds the forwarding label and egress interface, which corresponds to the above mentioned loopback address (IP address), from the forwarding label table 133. If VPN label 156 and push label 158 have been found, subrouter 123 i swaps VPN label 156 and forwarding label 158 for tag 152 to generate an MPLS packet 154, as shown in FIG. 3, and passes MPLS packet 154 to MPLS/SONET line card 128 to map MPLS packet 154 into one or more SONET paths. MPLS packet 154 arrives at the receiving MSPP 211-213 along the preset route through the MPLS/SONET network 200 while its forwarding label 158, if included, is replaced. MPLS/SONET line card 128 of the receiving MSPP 211-213 terminates the SONET path(s), receives the MPLS packet 154 from MPLS/SONET network 200, and passes a corresponding MPLS packet to VPN identification unit 129. VPN identification unit 129 identifies the VPN by referring to VPN label 156 of MPLS packet 154 and the SONET path(s) over which MPLS packet 154 was received and inputs packet 154 to the subrouter 123 i (i=1, 2, . . . ) corresponding to the VPN. Subrouter 123 i removes the forwarding label 158, if included, and refers to the VPN label table 124 to find the VID corresponding to VPN label 156. Subrouter 123 i then swaps tag 152, which contains the VID, for VPN label 156 to thereby generate a VLAN packet 150 and sends this VLAN packet 150 via line card 121 to the VLAN indicated by the VID. It should be noted that the VPN label tables 124 and MSPPs 221-213 (FIG. 8) are not identical in content and that the VID values of VLANs that belong to the same VPN are not necessarily the same. Further, though not shown clearly in FIG. 9, subrouter 123 i (i=1, 2, . . . ) and forwarding label table 123 may exist per every VPN.
  • In order to arrange it so that VLANs belonging to a VPN can communicate with each other, a route is established beforehand between MSPPs 211-213 to which these VLANs are connected to and forwarding labels and egress interfaces are stored in forwarding label table 133 (FIG. 9) of the router along the route, and the VPN label table 124 and L2 VPN routing table 125 are created.
  • In one embodiment, to create VPN label 124 and L2 VPN routing table 125, the operator may manually enter the VPN identifier (VPN label), the VLAN identifier (VID) and the VPNi, as illustrated at (A) in FIG. 10A. If these items of data are inputted into MSPPs 211-213, VPN label processor 126 of the MSPPs use the ARP (Address Resolution Protocol) to find the MAC address of the CPE router of the VLAN connected to this processor, finds the interface of the route over which the MPLS packet with the appended, where appropriate, push label are sent, such as shown in (A) of FIG. 10B and creates the VPN label table 124.
  • Next, routing table processor 127 finds the MAC address of the locally connected CPE router and the VLAN identifier (VID) from VPN label table 124 and creates direct-connect information of the L2 VPN routing table 125, which is illustrated, for example, in (B) of FIG. 10B. The MSPPs (MSPP A, MSPP B, MSPP C) 211, 212, 213 connected to the VLANs (VIDs=101, 152, 1501) that construct the VPN thereafter each send the other MSPPs 211-213 the MAC address of the locally connected user router CPE, the loopback address (IP address) of the locally connected MSPPs 211-213 and the VID by using a suitable routing protocol (e.g., OSPF, IS-IS, OSPF-TE). As a result, each MSPP 211-213 completes the fabrication of the L2 VPN routing table 125, as illustrated in (B) of FIG. 10B, based upon the received information, thus, L2 VPN routing tables 125 shown in FIGS. 11A-C are created in MSPPs 211, 212, 213 respectively, with regard to the VPN of Enterprise A in FIG. 8.
  • FIG. 12 illustrates exemplary transmissions of a packet between CPEs of disparate domains for Enterprise A of FIG. 6. In particular, FIG. 12 illustrates an example of transmission in which a packet is transmitted from the user router CPE A belonging to the VLAN (VID=101) of Enterprise A in Irving to the user router CPE C belonging to the VLAN (VID=1501) of Enterprise A in Plano.
  • User router CPE A 214 transmits a VLAN packet 150 (PKT1) that has been tagged with VID=101. When packet 150 (PKT 1) enters MSPP A 211, the router generates an MPLS packet 154 (PKT2) by removing tag 152 and adding, in place of tag 152, a VPN label 156 (26: the VPN identifier of Enterprise A) and a forwarding label 158 (push label), where appropriate, and sends MPLS packet 154 (PKT2) to MPLS/SONET network 200 over a SONET path. MPLS packet 154 (PKT2) subsequently arrives at the receiving MSPP C 213 along the preset route through MPLS/SONET network 200 while its forwarding label 158, if included, is replaced. The receiving MSPP C 213 creates a VLAN packet 150 (PKT3) by removing labels 154 and adding a VLAN identifier (VID=1501) to which destination user router CPE C belongs and then sends this packet to the VLAN specified by VID=1501. As a result, VLAN packet 150 (PKT3) arrives at the user router 231.
  • FIGS. 13-14 illustrate one embodiment of the method for VLAN-mapped MPLS/SONET transmit processing. In this embodiment, VLAN packets 150 are received via Ethernet channels and transmitted as MPLS packets.
  • Referring to FIGS. 13-14, when a packet arrives as an input, the transmitting MSPP 211-13 checks to determine whether the packet has been tagged at step 301. If it has not been tagged, MSPP 211-213 executes ordinary MPLS processing. If the packet has been tagged, MSPP 211-213 extracts the value of the VLAN ID (=VID) contained in tag 152 at step 302. Next, at step 306, the MSPP removes tag 152 and imposes a L2 label value (VPN label) 156.
  • If a forwarding label is required at step 308, then the execution proceeds to step 310. At step 310, MSPP 211-213 refers to forwarding label table 133 to find the forwarding label (push label) and imposes the push label as L1 and into one or more SONET paths. If the forwarding label is not required, then execution proceeds to step 311. At step 311, the MPLS packet is passed to an MPLS/SONET line card based on the retrieved egress interface. At step 312, the packet is sent to MPLS/SONET line card 128 to map the MPLS packet 154 to one or more SONET paths and send the MPLS packet through MPLS/SONET network 200.
  • The above is the processing executed by MSPP 211-213 on the transmitting side. This is followed by execution of processing for routing MPLS packet 154 through MPLS/SONET network 200. MPLS packet 154 is forwarded to the target MSPP 211-213, along the set route through MPLS/SONET network 200 while forwarding label 158, if included, is replaced at step 314.
  • The receiving MSPP 211-213 checks to see whether MPLS packet 154 has arrived at decisional step 316. If MPLS packet 154 has arrived, MSPP 211-213 removes any included forwarding label 158 attached as L1 at step 318. Next, MSPP 211-213 extracts the L2 VPN label 156 at step 320, refers to table 124 indicating the correspondence between the VLAN ID (=VID) and VPN label at step 322 and checks to see whether the VID has been found at step 324. If the VID has not been found, MSPP 211-213 discards packet 154. If the VID has been found, however, MSPP 211-213 removes L2 label 156 and adds a tag 152 that contains the VID to create a VLAN packet at step 326. Next, MSPP 211-213 refers to VPN label table 124 to find the output interface and sends VLAN packet 152 to that interface at step 317. As previously described, the output interface may be a logical Ethernet destination at Ethernet line card 121. In this embodiment, at Ethernet line card 121, the logical Ethernet value may be mapped to an interface and sub-interface identifying port and channels. The destination user router CPE C receives the VLAN packet and executes predetermined processing at step 330.
  • FIGS. 15A-B illustrate one embodiment of correspondence between user priority and a VLAN and IP precedence and MPLS. Referring to FIG. 17A, tag 152 of a VLAN packet 150 includes three-bit user priority and it is arranged so that the priority value stipulated by each MAC is entered using these three bits. A priority value can take on eight values of 0-7. User priority is low if the value is small (e.g., zero) and high if the value is large.
  • The label of an MPLS packet 154, on the other hand, includes a three-bit experimental field EXP, as shown in FIG. 17B. IP precedence is expressed using these three bits. IP precedence also is a priority value that can take on eight levels of 0-7. Priority is low if the value is small (e.g., zero) and high if the value is large. Accordingly, when a conversion is made from a VLAN packet 150 to an MPLS packet 154 in an MSPP 211-213, the three-bit user priority is inserted into the EXP field. When a conversion is made from an MPLS packet 154 to a VLAN packet 150, the IP precedence of the three-bit EXP field is inserted into the user-priority field. Thus, in one embodiment, priority control in a VLAN can be continued as IP precedence control in an MPLS network. Further, it is possible to return from IP precedence control to the original priority control in a VLAN.
  • Although the present invention has been described in detail, various changes and modifications may be suggested to one skilled in the art. It is intended that the present invention encompass such changes and modifications as falling within the scope of the appended claims.

Claims (21)

1. A virtual private network (VPN), comprising:
a core network, the core network comprising a shared label switching network over SONET;
a plurality of Virtual Local Access Networks (VLANs), each coupled to a Multiservice Provision Platform (MSPP) of the SONET network, the VLANs each communicating traffic with a corresponding MSPP utilizing Ethernet; and
the MSPPs interfacing the VLANs with the SONET network.
2. The VPN of claim 1, wherein the shared label comprises a Multiprotocol Label Switching (MPLS).
3. The VPN of claim 2, the MSPP each operable to convert an ingress VLAN packet received from a VLAN and associated with a VPN to an MPLS packet and to send the MPLS over SONET packet to the SONET network over one or more SONET paths; and convert the MPLS over SONET packet received from the SONET network to an egress VLAN packet and sending the egress packet to a VLAN associated with the VPN.
4. The VPN of claim 3, the MSPPs each comprising a first table storing correspondence between VLAN identifiers (VIDs) contained in VLAN packets and VPN labels contained in MPLS packets.
5. The VPN of claim 4, wherein an MSPP transmitting ingress traffic entering the core network is operable to determine a VPN label, the VPN corresponds to a VLAN identifier (VID) of a VLAN packet, from the first table, generates an MPLS packet having the VPN label and transmits the MPLS packet over one or more SONET paths in the core network.
6. The VPN of claim 5, wherein an MSPP receiving egress traffic exiting the core network is operable to determine a VID, which corresponds to a VPN label contained in an MPLS packet received from the SONET network, from the first table, generates a VLAN packet having the VID and transmits the VLAN packet to a VLAN indicated by the VID.
7. The VPN network of claim 6, wherein each MSPP comprises:
a route decision unit for determining an outgoing interface which directs an MPLS over SONET packet to an egress MSPP operable to receive egress traffic exiting the core network; and
a second table for storing outgoing interfaces, mapped to addresses of egress MSPPs.
8. The VPN of claim 7, wherein an MSPP transmitting ingress traffic entering the core network is operable to determine an outgoing interface, which corresponds to the egress MSPP, from the second table, generates an MPLS packet that contains the VPN label and sends the MPLS packet over one or more SONET paths in the SONET network.
9. The VPN network of claim 7, wherein the egress interface comprises a physical interface and a SONET path.
10. The VPN of claim 7, wherein the route decision unit further determines a forwarding label.
11. The VPN of claim 1, wherein at least one MSPP comprises a half bridge operable to only replicate traffic entering the core network, only learns Layer-2 address information from the core network, and performs split horizon forwarding.
12. The VPN of claim 1, the core network operable to pass Ethernet control traffic transparently.
13. The VPN of claim 1, wherein the core network does not participate in a Ethernet switch control plane.
14. An Multiservice Provisioning Platform (MSPP) of a shared label switching over SONET network, comprising:
an Ethernet line card operable to receive from a Virtual Local Access Network (VLAN) a VLAN packet and to send the VLAN packet received to a corresponding Ethernet interface;
one or more VPN units coupled to the Ethernet interface and operable to identify a VPN for the VLAN packet and to send the VLAN packet to a corresponding VPN subrouter based on the VPN;
each VPN subrouter operable to convert the VLAN packet to a label switching packet and to send the label switching packet to a corresponding label switching over SONET line card; and
a label switching over SONET line card operable to receive the label switching packet and map the label switching packet into one or more SONET paths for transmission over the shared label switching over SONET network.
15. The MSPP of claim 14, wherein the label switching over SONET network comprises a Multi Protocol Label Switching (MPLS) network.
16. The MSPP of claim 15, wherein each VPN subrouter is operable to convert a VLAN packet to an MPLS packet by replacing a tag of the VLAN packet with a VPN label and a forwarding label.
17. The MSPP of claim 16, wherein each VPN subrouter is further operable to convert the VLAN packet to the MPLS packet by inserting user priority information from the tag of the VLAN packet into a label of the MPLS packet.
18. A method, comprising:
receiving an Ethernet packet associated with one or more Virtual Private Networks (VPNs);
determining a VPN associated with each ingress packet;
converting the Ethernet packet to a shared switching packet based on the associated VPN for transmission over a shared network;
determining a forwarding label and egress interface for the Ethernet packet; and
converting the shared switching packet into one or more SONET paths based on the egress interface.
19. The method of claim 18, wherein the shared switching packet comprises a Multi Protocol Label Switching (MPLS) packet.
20. The method of claim 18, wherein the egress interface comprises a SONET path and an outgoing interface.
21. A method, comprising:
receiving an Ethernet packet associated with one or more Virtual Private Networks (VPNs);
determining a VPN associated with the Ethernet packet;
converting the Ethernet packet to an MPLS packet based on the associated VPN for transmission over a MPLS/SONET network;
determining a forwarding label, at least one SONET path, and outgoing interface for the Ethernet packet;
forwarding the MPLS packet to a MPLS/SONET line card based on the outgoing interface; and
converting the MPLS packet into a SONET frame based on the at least one SONET path.
US10/856,408 2004-05-26 2004-05-26 Application of an Ethernet/MPLS “half bridge” to provide emulated Ethernet LAN functions in SONET networks Expired - Fee Related US7430210B2 (en)

Priority Applications (2)

Application Number Priority Date Filing Date Title
US10/856,408 US7430210B2 (en) 2004-05-26 2004-05-26 Application of an Ethernet/MPLS “half bridge” to provide emulated Ethernet LAN functions in SONET networks
JP2005154510A JP2005341583A (en) 2004-05-26 2005-05-26 Virtual private network, multi-service provisioning platform and method

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
US10/856,408 US7430210B2 (en) 2004-05-26 2004-05-26 Application of an Ethernet/MPLS “half bridge” to provide emulated Ethernet LAN functions in SONET networks

Publications (2)

Publication Number Publication Date
US20050265355A1 true US20050265355A1 (en) 2005-12-01
US7430210B2 US7430210B2 (en) 2008-09-30

Family

ID=35425173

Family Applications (1)

Application Number Title Priority Date Filing Date
US10/856,408 Expired - Fee Related US7430210B2 (en) 2004-05-26 2004-05-26 Application of an Ethernet/MPLS “half bridge” to provide emulated Ethernet LAN functions in SONET networks

Country Status (2)

Country Link
US (1) US7430210B2 (en)
JP (1) JP2005341583A (en)

Cited By (26)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20050265329A1 (en) * 2004-05-28 2005-12-01 Fujitsu Limited Application of an Ethernet/MPLS half bridge to provide Ethernet multiplexing functions (EMF) in SONET network elements (NEs)
US20060092916A1 (en) * 2004-10-29 2006-05-04 Fujitsu Network Communications, Inc. Routing frames in an IP sonet ring using an IP proxy server
US20060190721A1 (en) * 2005-02-21 2006-08-24 Fujitsu Limited Communication apparatus, program and method
US20070140271A1 (en) * 2005-12-21 2007-06-21 Amante Shane M Method and system for terminating SONET/SDH circuits in an IP network
WO2007079665A1 (en) * 2006-01-06 2007-07-19 Huawei Technologies Co., Ltd. Method and apparatus for supporting vlan stacking in optical network
US20080107027A1 (en) * 2006-11-02 2008-05-08 Nortel Networks Limited Engineered paths in a link state protocol controlled Ethernet network
US7430210B2 (en) 2004-05-26 2008-09-30 Fujitsu Limited Application of an Ethernet/MPLS “half bridge” to provide emulated Ethernet LAN functions in SONET networks
US20090141703A1 (en) * 2007-11-30 2009-06-04 Morteza Ghodrat Systems and methods for carrier ethernet using referential tables for forwarding decisions
US20090168780A1 (en) * 2007-12-31 2009-07-02 Nortel Networks Limited MPLS P node replacement using a link state protocol controlled ethernet network
US7805287B1 (en) 2003-06-05 2010-09-28 Verizon Laboratories Inc. Node emulator
US7844432B1 (en) * 2003-06-05 2010-11-30 Verizon Laboratories Inc. Node emulator
US8051191B2 (en) 2008-04-28 2011-11-01 Microsoft Corporation Ethernet extensibility
US20120120955A1 (en) * 2009-09-09 2012-05-17 Maarten Vissers Method, device and system for interconnecting a multi-protocol label switching network and an ethernet
US8199750B1 (en) * 2007-12-18 2012-06-12 World Wide Packets, Inc. Communicating with a control plane using a forwarding information format and control plane processing of packets devoid of a virtual switch identifier
US8675667B1 (en) * 2005-01-20 2014-03-18 Verizon Corporate Services Group Inc. Systems and methods for forming and operating robust communication networks for an enterprise
WO2014210483A1 (en) * 2013-06-28 2014-12-31 Huawei Technologies Co., Ltd. Multiprotocol label switching transport for supporting a very large number of virtual private networks
US20160261641A1 (en) * 2013-03-15 2016-09-08 Tempered Networks, Inc. Industrial network security
US10069726B1 (en) 2018-03-16 2018-09-04 Tempered Networks, Inc. Overlay network identity-based relay
US10116539B1 (en) 2018-05-23 2018-10-30 Tempered Networks, Inc. Multi-link network gateway with monitoring and dynamic failover
US10158545B1 (en) 2018-05-31 2018-12-18 Tempered Networks, Inc. Monitoring overlay networks
US10178133B2 (en) 2014-07-30 2019-01-08 Tempered Networks, Inc. Performing actions via devices that establish a secure, private network
US10326799B2 (en) 2016-07-01 2019-06-18 Tempered Networks, Inc. Reel/Frame: 043222/0041 Horizontal switch scalability via load balancing
US10911418B1 (en) 2020-06-26 2021-02-02 Tempered Networks, Inc. Port level policy isolation in overlay networks
US10999154B1 (en) 2020-10-23 2021-05-04 Tempered Networks, Inc. Relay node management for overlay networks
US11070594B1 (en) 2020-10-16 2021-07-20 Tempered Networks, Inc. Applying overlay network policy based on users
US20220345402A1 (en) * 2019-09-04 2022-10-27 Xiamen Wangsu Co., Ltd. Method, system, and device for switching layer 2 tunnel

Families Citing this family (31)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US7653526B1 (en) * 2002-08-16 2010-01-26 Cisco Technology, Inc. Method and system for emulating an ethernet link over a sonet path
CN100505746C (en) * 2004-02-07 2009-06-24 华为技术有限公司 Method for implement virtual leased line
US8064441B2 (en) * 2007-03-09 2011-11-22 Cisco Technology, Inc. Upstream label allocation on Ethernets for MP2MP LSPS
US9369371B2 (en) 2012-10-05 2016-06-14 Cisco Technologies, Inc. Method and system for path monitoring using segment routing
US9049233B2 (en) 2012-10-05 2015-06-02 Cisco Technology, Inc. MPLS segment-routing
US10374938B1 (en) 2012-12-27 2019-08-06 Sitting Man, Llc Routing methods, systems, and computer program products
US10411997B1 (en) 2012-12-27 2019-09-10 Sitting Man, Llc Routing methods, systems, and computer program products for using a region scoped node identifier
US10397101B1 (en) 2012-12-27 2019-08-27 Sitting Man, Llc Routing methods, systems, and computer program products for mapping identifiers
US10904144B2 (en) 2012-12-27 2021-01-26 Sitting Man, Llc Methods, systems, and computer program products for associating a name with a network path
US10404583B1 (en) 2012-12-27 2019-09-03 Sitting Man, Llc Routing methods, systems, and computer program products using multiple outside-scope identifiers
US10587505B1 (en) 2012-12-27 2020-03-10 Sitting Man, Llc Routing methods, systems, and computer program products
US10447575B1 (en) 2012-12-27 2019-10-15 Sitting Man, Llc Routing methods, systems, and computer program products
US10397100B1 (en) 2012-12-27 2019-08-27 Sitting Man, Llc Routing methods, systems, and computer program products using a region scoped outside-scope identifier
US10411998B1 (en) 2012-12-27 2019-09-10 Sitting Man, Llc Node scope-specific outside-scope identifier-equipped routing methods, systems, and computer program products
US10419334B1 (en) 2012-12-27 2019-09-17 Sitting Man, Llc Internet protocol routing methods, systems, and computer program products
US10419335B1 (en) 2012-12-27 2019-09-17 Sitting Man, Llc Region scope-specific outside-scope indentifier-equipped routing methods, systems, and computer program products
US10212076B1 (en) 2012-12-27 2019-02-19 Sitting Man, Llc Routing methods, systems, and computer program products for mapping a node-scope specific identifier
US10404582B1 (en) 2012-12-27 2019-09-03 Sitting Man, Llc Routing methods, systems, and computer program products using an outside-scope indentifier
US10476787B1 (en) 2012-12-27 2019-11-12 Sitting Man, Llc Routing methods, systems, and computer program products
US9565160B2 (en) 2013-03-11 2017-02-07 Cisco Technology, Inc. Advertisement of adjacency segment identifiers
US9559954B2 (en) 2013-03-11 2017-01-31 Cisco Technology, Inc. Indexed segment ID
US9537769B2 (en) 2013-03-15 2017-01-03 Cisco Technology, Inc. Opportunistic compression of routing segment identifier stacks
US9537718B2 (en) 2013-03-15 2017-01-03 Cisco Technology, Inc. Segment routing over label distribution protocol
EP2997699B1 (en) 2013-05-17 2020-03-04 Cisco Technology, Inc. Segment routing mapping server for ldp/sr interoperability
US9762488B2 (en) 2014-03-06 2017-09-12 Cisco Technology, Inc. Segment routing extension headers
US9401858B2 (en) 2014-06-30 2016-07-26 Cisco Technology, Inc. Loop avoidance during network convergence in switched networks
US9807001B2 (en) 2014-07-17 2017-10-31 Cisco Technology, Inc. Segment routing using a remote forwarding adjacency identifier
US10341221B2 (en) 2015-02-26 2019-07-02 Cisco Technology, Inc. Traffic engineering for bit indexed explicit replication
US10263881B2 (en) 2016-05-26 2019-04-16 Cisco Technology, Inc. Enforcing strict shortest path forwarding using strict segment identifiers
US11032197B2 (en) 2016-09-15 2021-06-08 Cisco Technology, Inc. Reroute detection in segment routing data plane
US11140074B2 (en) 2019-09-24 2021-10-05 Cisco Technology, Inc. Communicating packets across multi-domain networks using compact forwarding instructions

Citations (20)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US6339595B1 (en) * 1997-12-23 2002-01-15 Cisco Technology, Inc. Peer-model support for virtual private networks with potentially overlapping addresses
US20020110087A1 (en) * 2001-02-14 2002-08-15 David Zelig Efficient setup of label-switched connections
US20020176450A1 (en) * 2001-01-31 2002-11-28 Sycamore Networks, Inc. System and methods for selectively transmitting ethernet traffic over SONET/SDH optical network
US20030110268A1 (en) * 2001-12-07 2003-06-12 Francois Kermarec Methods of establishing virtual circuits and of providing a virtual private network service through a shared network, and provider edge device for such network
US20030174706A1 (en) * 2002-03-15 2003-09-18 Broadcom Corporation Fastpath implementation for transparent local area network (LAN) services over multiprotocol label switching (MPLS)
US20030185223A1 (en) * 2002-03-28 2003-10-02 Michael Tate Signaling methods for a telecommunication system and devices for implementing such methods
US6633571B1 (en) * 1999-05-27 2003-10-14 Hitachi, Ltd. VPN composing method, interwork router, packet communication method, data communication apparatus, and packet relaying apparatus
US20040037279A1 (en) * 2002-08-23 2004-02-26 David Zelig Virtual private LAN service using a multicast protocol
US20040076166A1 (en) * 2002-10-21 2004-04-22 Patenaude Jean-Marc Guy Multi-service packet network interface
US20040081172A1 (en) * 2002-09-13 2004-04-29 Hamid Ould-Brahim Generalized Layer-2 VPNs
US6757298B1 (en) * 2000-10-10 2004-06-29 Cisco Technology, Inc. VLAN trunking over ATM PVCs (VTAP)
US20040146058A1 (en) * 2002-12-12 2004-07-29 Sachiko Nemoto Frame transmission method
US6771662B1 (en) * 2000-05-30 2004-08-03 Hitachi, Ltd. Label switching type of packet forwarding apparatus
US20040170173A1 (en) * 2003-01-15 2004-09-02 Ping Pan Method and apparatus for transporting packet data over an optical network
US6788681B1 (en) * 1999-03-16 2004-09-07 Nortel Networks Limited Virtual private networks and methods for their operation
US20040174887A1 (en) * 2003-02-21 2004-09-09 Alcatel Hybrid virtual private LAN extensions
US20050053079A1 (en) * 2003-09-06 2005-03-10 Havala Paul F. Virtual private network (VPN) with channelized ethernet over sonet (EoS) interface and method
US20050265329A1 (en) * 2004-05-28 2005-12-01 Fujitsu Limited Application of an Ethernet/MPLS half bridge to provide Ethernet multiplexing functions (EMF) in SONET network elements (NEs)
US7079544B2 (en) * 2000-06-02 2006-07-18 Hitachi, Ltd. Apparatus and method for interworking between MPLS network and non-MPLS network
US7242665B2 (en) * 2001-01-25 2007-07-10 Ericsson Ab Network device virtual interface

Family Cites Families (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US7225244B2 (en) * 2000-05-20 2007-05-29 Ciena Corporation Common command interface
JP4183379B2 (en) * 2000-11-27 2008-11-19 富士通株式会社 Network and edge router
US7430210B2 (en) 2004-05-26 2008-09-30 Fujitsu Limited Application of an Ethernet/MPLS “half bridge” to provide emulated Ethernet LAN functions in SONET networks

Patent Citations (21)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US6339595B1 (en) * 1997-12-23 2002-01-15 Cisco Technology, Inc. Peer-model support for virtual private networks with potentially overlapping addresses
US6788681B1 (en) * 1999-03-16 2004-09-07 Nortel Networks Limited Virtual private networks and methods for their operation
US6633571B1 (en) * 1999-05-27 2003-10-14 Hitachi, Ltd. VPN composing method, interwork router, packet communication method, data communication apparatus, and packet relaying apparatus
US6771662B1 (en) * 2000-05-30 2004-08-03 Hitachi, Ltd. Label switching type of packet forwarding apparatus
US7079544B2 (en) * 2000-06-02 2006-07-18 Hitachi, Ltd. Apparatus and method for interworking between MPLS network and non-MPLS network
US6757298B1 (en) * 2000-10-10 2004-06-29 Cisco Technology, Inc. VLAN trunking over ATM PVCs (VTAP)
US7242665B2 (en) * 2001-01-25 2007-07-10 Ericsson Ab Network device virtual interface
US20020176450A1 (en) * 2001-01-31 2002-11-28 Sycamore Networks, Inc. System and methods for selectively transmitting ethernet traffic over SONET/SDH optical network
US20020110087A1 (en) * 2001-02-14 2002-08-15 David Zelig Efficient setup of label-switched connections
US20030110268A1 (en) * 2001-12-07 2003-06-12 Francois Kermarec Methods of establishing virtual circuits and of providing a virtual private network service through a shared network, and provider edge device for such network
US20030174706A1 (en) * 2002-03-15 2003-09-18 Broadcom Corporation Fastpath implementation for transparent local area network (LAN) services over multiprotocol label switching (MPLS)
US20030185223A1 (en) * 2002-03-28 2003-10-02 Michael Tate Signaling methods for a telecommunication system and devices for implementing such methods
US20040037279A1 (en) * 2002-08-23 2004-02-26 David Zelig Virtual private LAN service using a multicast protocol
US20040081172A1 (en) * 2002-09-13 2004-04-29 Hamid Ould-Brahim Generalized Layer-2 VPNs
US20040076166A1 (en) * 2002-10-21 2004-04-22 Patenaude Jean-Marc Guy Multi-service packet network interface
US20040146058A1 (en) * 2002-12-12 2004-07-29 Sachiko Nemoto Frame transmission method
US20040170173A1 (en) * 2003-01-15 2004-09-02 Ping Pan Method and apparatus for transporting packet data over an optical network
US6985488B2 (en) * 2003-01-15 2006-01-10 Ciena Corporation Method and apparatus for transporting packet data over an optical network
US20040174887A1 (en) * 2003-02-21 2004-09-09 Alcatel Hybrid virtual private LAN extensions
US20050053079A1 (en) * 2003-09-06 2005-03-10 Havala Paul F. Virtual private network (VPN) with channelized ethernet over sonet (EoS) interface and method
US20050265329A1 (en) * 2004-05-28 2005-12-01 Fujitsu Limited Application of an Ethernet/MPLS half bridge to provide Ethernet multiplexing functions (EMF) in SONET network elements (NEs)

Cited By (44)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US7844432B1 (en) * 2003-06-05 2010-11-30 Verizon Laboratories Inc. Node emulator
US7805287B1 (en) 2003-06-05 2010-09-28 Verizon Laboratories Inc. Node emulator
US7430210B2 (en) 2004-05-26 2008-09-30 Fujitsu Limited Application of an Ethernet/MPLS “half bridge” to provide emulated Ethernet LAN functions in SONET networks
US7433359B2 (en) 2004-05-28 2008-10-07 Fujitsu Limited Application of an Ethernet/MPLS half bridge to provide Ethernet multiplexing functions (EMF) in SONET network elements (NEs)
US20050265329A1 (en) * 2004-05-28 2005-12-01 Fujitsu Limited Application of an Ethernet/MPLS half bridge to provide Ethernet multiplexing functions (EMF) in SONET network elements (NEs)
US20060092916A1 (en) * 2004-10-29 2006-05-04 Fujitsu Network Communications, Inc. Routing frames in an IP sonet ring using an IP proxy server
US8675667B1 (en) * 2005-01-20 2014-03-18 Verizon Corporate Services Group Inc. Systems and methods for forming and operating robust communication networks for an enterprise
US8024789B2 (en) * 2005-02-21 2011-09-20 Fujitsu Limited Communication apparatus, program and method
US20060190721A1 (en) * 2005-02-21 2006-08-24 Fujitsu Limited Communication apparatus, program and method
WO2007076192A2 (en) 2005-12-21 2007-07-05 Level 3 Communications, Inc Method and system for terminating sonet/sdh circuits in an ip network
EP1966956A2 (en) * 2005-12-21 2008-09-10 Level 3 Communications, Inc. Method and system for terminating sonet/sdh circuits in an ip network
US20070140271A1 (en) * 2005-12-21 2007-06-21 Amante Shane M Method and system for terminating SONET/SDH circuits in an IP network
EP1966956A4 (en) * 2005-12-21 2010-12-22 Level 3 Communications Llc Method and system for terminating sonet/sdh circuits in an ip network
WO2007079665A1 (en) * 2006-01-06 2007-07-19 Huawei Technologies Co., Ltd. Method and apparatus for supporting vlan stacking in optical network
US20080107027A1 (en) * 2006-11-02 2008-05-08 Nortel Networks Limited Engineered paths in a link state protocol controlled Ethernet network
US20090141703A1 (en) * 2007-11-30 2009-06-04 Morteza Ghodrat Systems and methods for carrier ethernet using referential tables for forwarding decisions
US8885634B2 (en) * 2007-11-30 2014-11-11 Ciena Corporation Systems and methods for carrier ethernet using referential tables for forwarding decisions
US8199750B1 (en) * 2007-12-18 2012-06-12 World Wide Packets, Inc. Communicating with a control plane using a forwarding information format and control plane processing of packets devoid of a virtual switch identifier
US20090168780A1 (en) * 2007-12-31 2009-07-02 Nortel Networks Limited MPLS P node replacement using a link state protocol controlled ethernet network
US8051191B2 (en) 2008-04-28 2011-11-01 Microsoft Corporation Ethernet extensibility
US20120120955A1 (en) * 2009-09-09 2012-05-17 Maarten Vissers Method, device and system for interconnecting a multi-protocol label switching network and an ethernet
US8681805B2 (en) * 2009-09-09 2014-03-25 Huawei Technologies Co., Ltd. Method, device and system for interconnecting a multi-protocol label switching network and an ethernet
US10038725B2 (en) * 2013-03-15 2018-07-31 Tempered Networks, Inc. Industrial network security
US20160261641A1 (en) * 2013-03-15 2016-09-08 Tempered Networks, Inc. Industrial network security
WO2014210483A1 (en) * 2013-06-28 2014-12-31 Huawei Technologies Co., Ltd. Multiprotocol label switching transport for supporting a very large number of virtual private networks
US10178133B2 (en) 2014-07-30 2019-01-08 Tempered Networks, Inc. Performing actions via devices that establish a secure, private network
US10326799B2 (en) 2016-07-01 2019-06-18 Tempered Networks, Inc. Reel/Frame: 043222/0041 Horizontal switch scalability via load balancing
US10069726B1 (en) 2018-03-16 2018-09-04 Tempered Networks, Inc. Overlay network identity-based relay
US10200281B1 (en) 2018-03-16 2019-02-05 Tempered Networks, Inc. Overlay network identity-based relay
US10797993B2 (en) 2018-03-16 2020-10-06 Tempered Networks, Inc. Overlay network identity-based relay
US10797979B2 (en) 2018-05-23 2020-10-06 Tempered Networks, Inc. Multi-link network gateway with monitoring and dynamic failover
US10116539B1 (en) 2018-05-23 2018-10-30 Tempered Networks, Inc. Multi-link network gateway with monitoring and dynamic failover
US11509559B2 (en) 2018-05-31 2022-11-22 Tempered Networks, Inc. Monitoring overlay networks
US10158545B1 (en) 2018-05-31 2018-12-18 Tempered Networks, Inc. Monitoring overlay networks
US11582129B2 (en) 2018-05-31 2023-02-14 Tempered Networks, Inc. Monitoring overlay networks
US20220345402A1 (en) * 2019-09-04 2022-10-27 Xiamen Wangsu Co., Ltd. Method, system, and device for switching layer 2 tunnel
US10911418B1 (en) 2020-06-26 2021-02-02 Tempered Networks, Inc. Port level policy isolation in overlay networks
US11729152B2 (en) 2020-06-26 2023-08-15 Tempered Networks, Inc. Port level policy isolation in overlay networks
US12095743B2 (en) 2020-06-26 2024-09-17 Tyco Fire & Security Gmbh Port level policy isolation in overlay networks
US11070594B1 (en) 2020-10-16 2021-07-20 Tempered Networks, Inc. Applying overlay network policy based on users
US11824901B2 (en) 2020-10-16 2023-11-21 Tempered Networks, Inc. Applying overlay network policy based on users
US10999154B1 (en) 2020-10-23 2021-05-04 Tempered Networks, Inc. Relay node management for overlay networks
US11831514B2 (en) 2020-10-23 2023-11-28 Tempered Networks, Inc. Relay node management for overlay networks
US12224912B2 (en) 2020-10-23 2025-02-11 Tyco Fire & Security Gmbh Relay node management for overlay networks

Also Published As

Publication number Publication date
JP2005341583A (en) 2005-12-08
US7430210B2 (en) 2008-09-30

Similar Documents

Publication Publication Date Title
US7430210B2 (en) Application of an Ethernet/MPLS “half bridge” to provide emulated Ethernet LAN functions in SONET networks
US7366181B2 (en) Virtual private network (VPN) with channelized ethernet over sonet (EoS) interface and method
US7433359B2 (en) Application of an Ethernet/MPLS half bridge to provide Ethernet multiplexing functions (EMF) in SONET network elements (NEs)
CA2413570C (en) Address resolution method for a virtual private network, and customer edge device for implementing the method
JP5106100B2 (en) Differential transfer in addressed carrier networks
US6789121B2 (en) Method of providing a virtual private network service through a shared network, and provider edge device for such network
US20030174706A1 (en) Fastpath implementation for transparent local area network (LAN) services over multiprotocol label switching (MPLS)
US7796611B2 (en) Method for providing efficient multipoint network services
US7733812B2 (en) Method for enabling multipoint network services over a ring topology network
US7447213B2 (en) Method and apparatus for end-to-end connection between an RPR and an MPLS network
US20090129391A1 (en) Virtual Ethernet MAC Switching
EP1318631B1 (en) Address resolution method for a virtual private network, and customer edge device for implementing the method
EP1351450B1 (en) Fastpath implementation for transparent local area network (LAN) services over multiprotocol label switching (MPLS)
Cisco Configuring Transparent Bridging
Cisco Configuring Transparent Bridging
Cisco Configuring Transparent Bridging
Cisco Configuring Transparent Bridging
Cisco Configuring Transparent Bridging
Cisco Configuring Transparent Bridging
Cisco Configuring Transparent Bridging

Legal Events

Date Code Title Description
AS Assignment

Owner name: FUJITSU LIMITED, JAPAN

Free format text: ASSIGNMENT OF ASSIGNORS INTEREST;ASSIGNORS:HAVALA, PAUL F.;LISLE, SAMUEL V.;CAI, BIAODONG;AND OTHERS;REEL/FRAME:015417/0586;SIGNING DATES FROM 20040520 TO 20040525

FEPP Fee payment procedure

Free format text: PAYOR NUMBER ASSIGNED (ORIGINAL EVENT CODE: ASPN); ENTITY STATUS OF PATENT OWNER: LARGE ENTITY

REMI Maintenance fee reminder mailed
LAPS Lapse for failure to pay maintenance fees
STCH Information on status: patent discontinuation

Free format text: PATENT EXPIRED DUE TO NONPAYMENT OF MAINTENANCE FEES UNDER 37 CFR 1.362

FP Lapsed due to failure to pay maintenance fee

Effective date: 20120930

OSZAR »